[Cryptech Tech] Comments on Alpha board schematics

Joachim Strömbergson joachim at secworks.se
Mon Jan 25 15:28:24 UTC 2016


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Aloha!

Joachim Strömbergson wrote:
> I would suggest that the ability to turn the entropy source on or off
> is given to the FPGA. (Which of course could expose the control via
> the core API). If the control is done by the CPU or Tamper-MCU, then
> we could easily end up reseeding the CPRNG using only the ring
> oscillator based entropy provider. Having support for turning the
> entropy source off ana on adds quite a lot of complexity in terms of
> warm up times and startup testing vs starvation of RNG output and
> race problems.
> 
> When I look in Rev02, sheet 03 I assumed there would be a control
> signal for this function, but I don't see it. Has it not been
> included?

Sorry for the confusion, That functionality is present on sheet 02.
Suggestion is to connect FPGA_ENTROPY_DISABLE to pin on FPGA.

- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
 Joachim Strömbergson          Secworks AB          joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=6CaS
-----END PGP SIGNATURE-----


More information about the Tech mailing list